银行 aix操作系统安装配置规范
AIX操作系统安装配置规范
1)设置密码规范
?规范要求:
10次无效登录后锁定帐户,该策略对root用户不起作用,因此不对root
实施
?修改方法:
chuser loginretries=’10’ {USERNAME}
?检查方法:
lsuser {USERNAME}
?恢复方法:
chuser loginretries=’0’ {USERNAME}
?单个用户的解锁方法:
chsec -f /etc/security/lastlog -a "unsuccessful_login_count=0" -s {USERNAME}
2)锁定系统默认账号
?规范要求:
锁定的以下系统默认账户:daemon,bin,sys,adm,uucp,guest,nobody,lpd,lp,invscout,snapp,ipsec,nuucp
?修改方法:
chuser account_locked=true daemon
chuser account_locked=true bin
chuser account_locked=true sys
chuser account_locked=true adm
chuser account_locked=true uucp
chuser account_locked=true guest
chuser account_locked=true nobody
chuser account_locked=true lpd
chuser account_locked=true lp
chuser account_locked=true invscout
chuser account_locked=true snapp
chuser account_locked=true ipsec
1
相关主题